libyal / libsigscan

Related projects ⓘ

Alternatives and complementary repositories for libsigscan

• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• BinSigma / BinClone
  ☆27Updated 2 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated 2 years ago
• maldevel / PEdumper
  Dump Windows PE file information in C
  ☆23Updated 9 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆50Updated 9 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆33Updated 8 years ago
• univm / univm
  A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.
  ☆30Updated 8 years ago
• wirepair / IDAPinLogger
  Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.
  ☆41Updated 11 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆33Updated 11 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆36Updated 7 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆27Updated 10 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• wekillpeople / protect-process
  Protect process fsfilter driver. Windows x64
  ☆33Updated 8 years ago
• nihilus / ida-pro-swf
  ☆30Updated 8 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆32Updated 13 years ago
• AntiRootkit / BDArkit
  just an lite AntiRootkit for interesting
  ☆23Updated 8 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆38Updated 4 years ago
• gamebooster / ida-map-loader
  ☆11Updated 9 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆18Updated 8 years ago
• Microwave89 / injector
  Code Injector Using Code Caves
  ☆14Updated 9 years ago
• NtRaiseHardError / NoREpls
  NoREpls - Application designed for the purposes of reverse engineering.
  ☆10Updated 6 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆39Updated 6 years ago
• tandasat / DrvLoader
  A command line tool to load and unload a device driver.
  ☆44Updated 7 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆37Updated 11 years ago
• yaseralnajjar / deobfuscation-helper
  A simple tool to help reverse engineers while dealing with obfuscated code.
  ☆20Updated 8 years ago